Claims 

1. A method of providing secure dial-in access to an enterprise system over a public 
network via a Virtual Secure Point of Presence (VSPOP), comprising: 

receiving a dial-in user connection in a VSPOP; 
5 authenticating the user connection via the VSPOP; and 

providing an encrypted connection from the received dial-in connection in the 
VSPOP to the enterprise system over a public network. 
*define VSPOP in spec carefully... 

10 2. The method of claim 1, wherein the dial-in user connection comprises a dial-in 
connection via a local exchange carrier bypass trunk. 
*define lec bypass trunk in spec 

3. The method of claim 1, wherein the dial-in user connection comprises a toll-free 
1 5 dial-in connection. 

4. The method of claim 1, wherein the public network is the Internet. 

5. The method of claim 1, wherein the VSPOP is operable to provide a connection to 
20 multiple enterprise systems. 

6. The method of claim 1, further comprising tracking the dial-in user connection and 
storing resulting tracking data in a log. 

10 



7. The method of claim 6, wherein the logged tracking data is used for accounting. 

8. The method of claim 1, wherein authenticating the user connection via the VSPOP 
comprises authorizing facilitating a connection between the dial-in user and the 
enterprise system. 

9. The method of claim 1, wherein authenticating the user connection via the VSPOP 
comprises user authentication via an authentication service provided by the VSPOP. 

10. The method of claim 9, wherein the authentication service provided by the 
VSPOP is a Remote Authentication Dial-In User Service (RADIUS). 

1 1 . The method of claim 1, wherein authenticating the user connection via the VSPOP 
comprises user authentication via an authentication service provided by the enterprise 
system. 

12. The method of claim 11, wherein the authentication service provided by the 
enterprise system is a Remote Authentication Dial-In User Service (RADIUS). 

13. The method of claim 1, wherein the encrypted connection from the VSPOP to the 
enterprise system comprises a IPsec connection 



14. The method of claim 1, wherein the encrypted connection from the VSPOP to the 
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enterprise system comprises a Layer 2 Forwarding (L2F) connection. 

15. The method of claim 1, wherein the encrypted connection from the VSPOP to the 
enterprise system comprises a PPTP connection. 

5 

16. A machine-readable medium with instructions stored thereon, the instructions 
when executed operable to cause a computerized system to provide secure dial-in 
access to an enterprise system over a public network by: 

receiving a dial-in user connection in a Virtual Secure Point of Presence 
10 (VSPOP); 

authenticating the user connection via the VSPOP; and 
providing an encrypted connection from the received dial-in connection in the 
VSPOP to the enterprise system over a public network. 

15 

17. The machine-readable medium of claim 16, wherein the dial-in user connection 
comprises a dial-in connection via a local exchange carrier bypass trunk. 

18. The machine-readable medium of claim 16, wherein the dial-in user connection 
20 comprises a toll-free dial-in connection. 

19. The machine-readable medium of claim 16, wherein the public network is the 
Internet. 
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20. The machine-readable medium of claim 16, wherein the VSPOP is operable to 
provide a connection to multiple enterprise systems. 

21. The machine-readable medium of claim 16, the instructions further operable to 

5 cause the computerized system to track the dial-in user connection and store resulting 
tracking data in a log. 

22. The machine-readable medium of claim 21, wherein the logged tracking data is 
used for accounting. 
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23. The machine-readable medium of claim 16, wherein authenticating the user 
connection via the VSPOP comprises authorizing facilitating a connection between the 
dial-in user and the enterprise system. 

15 24. The machine-readable medium of claim 1 6, wherein authenticating the user 

connection via the VSPOP comprises user authentication via an authentication service 
provided by the VSPOP. 

25. The machine-readable medium of claim 24, wherein the authentication service 
20 provided by the VSPOP is a Remote Authentication Dial-In User Service (RADIUS). 

26. The machine-readable medium of claim 16, wherein authenticating the user 
connection via the VSPOP comprises user authentication via an authentication service 
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provided by the enterprise system. 



27. The machine-readable medium of claim 26, wherein the authentication service 
provided by the enterprise system is a Remote Authentication Dial-In User Service 

5 (RADIUS). 

28. The machine-readable medium of claim 16, wherein the encrypted connection 
from the VSPOP to the enterprise system comprises a IPsec connection 

10 29. The machine-readable medium of claim 16, wherein the encrypted connection 
from the VSPOP to the enterprise system comprises a Layer 2 Forwarding (L2F) 
connection. 

30. The machine-readable medium of claim 16, wherein the encrypted connection 
15 from the VSPOP to the enterprise system comprises a PPTP connection. 

MRM claims 

31. A Virtual Secure Point of Presence (VSPOP) computerized system operable to 
provide secure dial-in access over a public network by: 

20 receiving a dial-in user connection in a VSPOP; 

authenticating the user connection via the VSPOP; and 
providing an encrypted connection from the received dial-in connection in the 
VSPOP to the enterprise system over a public network. 
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32. The computerized system of claim 31, wherein the dial-in user connection 
comprises a dial-in connection via a local exchange carrier bypass trunk. 



5 

33. The computerized system of claim 31, wherein the dial-in user connection 
comprises a toll-free dial-in connection. 

34. The computerized system of claim 31, wherein the public network is the Internet. 

10 

35. The computerized system of claim 31, wherein the VSPOP is operable to provide 
a connection to multiple enterprise systems. 

36. The computerized system of claim 31, further operable to track the dial-in user 
15 connection and store resulting tracking data in a log. 

37. The computerized system of claim 36, wherein the logged tracking data is used for 
accounting. 

20 38. The computerized system of claim 31, wherein authenticating the user connection 
via the VSPOP comprises authorizing facilitating a connection between the dial-in 
user and the enterprise system. 
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39. The computerized system of claim 3 1 , wherein authenticating the user connection 
via the VSPOP comprises user authentication via an authentication service provided 
by the VSPOP. 

40. The computerized system of claim 39, wherein the authentication service provided 
by the VSPOP is a Remote Authentication Dial-In User Service (RADIUS). 

41. The computerized system of claim 31, wherein authenticating the user connection 
via the VSPOP comprises user authentication via an authentication service provided 
by the enterprise system. 

42. The computerized system of claim 41, wherein the authentication service provided 
by the enterprise system is a Remote Authentication Dial-In User Service (RADIUS). 

43. The computerized system of claim 31, wherein the encrypted connection from the 
VSPOP to the enterprise system comprises a IPsec connection 

44. The computerized system of claim 31, wherein the encrypted connection from the 
VSPOP to the enterprise system comprises a Layer 2 Forwarding (L2F) connection. 

45. The computerized system of claim 31, wherein the encrypted connection from the 
VSPOP to the enterprise system comprises a PPTP connection. 
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